276 to 300 of 327 Security Posture Jobs in the UK

Security Compliance Manager - Payments, PCI DSS, SOC2 - £100,000 A rapidly growing payments technology company that has established itself as a major player in the UK market, is seeking a Security Compliance Manager to drive their critical compliance initiatives and strengthen their security posture as they continue their expansion across multiple markets. This is a great … opportunity for an experienced Security Compliance Manager to take ownership of comprehensive compliance programs within a dynamic payments environment. You'll be the go-to expert for PCI certifications, leading compliance strategy, and building robust security control frameworks that enable business growth while maintaining customer trust. Working within the Product Security team, you'll collaborate closely with … engineering and product development to embed security compliance from the ground up. The Security Compliance Manager's responsibilities: Leading and managing all PCI compliance initiatives including PCI DSS, PCI PIN, PCI P2PE certifications, with responsibility for achieving new certifications such as PCI MPoC and PCI SSF. Serving as the primary liaison with Qualified Security Assessors (QSAs) and More ❯

Primary Details Time Type: Full time Worker Type: Employee The Security Governance & Assurance Specialist supports QBE’s cyber security objectives by providing clear, data-driven insights into the performance of key controls and the organisation’s overall security posture. The role is responsible for tracking and analysing control metrics, surfacing risk signals, and contributing to reporting for … governance forums, senior stakeholders, and regulatory engagements.Working as part of the Group Cyber Security function, the role acts as a central point for integrating control performance data into meaningful narratives that support decision-making and risk prioritisation. As the function continues to mature, the role will also support targeted, evidence-based assurance activities that complement formal risk and control … assessments, and strengthen overall confidence in the design and effectiveness of QBE’s cyber controls. Primary Responsibilities – Security Governance & Assurance Specialist Monitor and analyse cyber control performance metrics and key risk indicators (KRIs) to identify trends, emerging risks, and opportunities for control uplift. Develop and maintain reporting artefacts (e.g. dashboards, briefings, governance packs) that clearly communicate security posture More ❯

Systems Developer, Security Integrations Group Job ID: Amazon Ireland Support Services Limited Would you like to help protect Amazon's global operations while building innovative solutions? The Security Integrations Group (SIG) Continuous Improvement (CI) Team is looking for a Systems Development Engineer who can bridge the gap between operations, security, and software development. This role combines hands … on system engineering with software development to create and maintain tools that enhance our security posture and operational efficiency. As a System Development Engineer in SIG CI, you'll work in a dynamic environment where you'll not only develop tools but also help deploy, manage, and improve the systems that keep our security operations running smoothly. … Through close collaboration with security teams and external partners, you'll help ensure the resilience and effectiveness of our security infrastructure. What you'll be working on: Building and maintaining operational tools using React, JavaScript, and Python Managing and improving system integrations between internal and external security platforms Troubleshooting complex system issues across multiple technology stacks Creating More ❯

Lead Security Architect Flexible location Glasgow, Ipswich, London, Northampton or Selby Hybrid working Permanent, full time Career level 3 Closing date: Monday 30th June 2025 Who we are Were not just talking about making a difference, were making it happen. We generate dispatchable, renewable power and create stable energy in an uncertain world. Building on our proud heritage, we … business champions. Were enabling a zero carbon, lower cost energy future for all, and working hard to decarbonise the planet for generations to come. About the role As Lead Security Architect, youll be instrumental in the definition, development and implementation of the enterprise security architecture strategy and technology roadmaps aligned to the strategic requirements of the business. This … role will involve overseeing and leading the provision of Security Architecture services to change initiatives, aligning and coordinating with wider Digital Security and architecture governance functions to advise on and deliver a comprehensive enterprise (IT) and operational technology (OT) security architecture which is necessary to build and ensure an enhanced resilience in our critical operations against known More ❯

Lead Security Architect Flexible location Glasgow, Ipswich, London, Northampton or Selby Hybrid working Permanent, full time Career level 3 Closing date: Monday 30th June 2025 Who we are Were not just talking about making a difference, were making it happen. We generate dispatchable, renewable power and create stable energy in an uncertain world. Building on our proud heritage, we … business champions. Were enabling a zero carbon, lower cost energy future for all, and working hard to decarbonise the planet for generations to come. About the role As Lead Security Architect, youll be instrumental in the definition, development and implementation of the enterprise security architecture strategy and technology roadmaps aligned to the strategic requirements of the business. This … role will involve overseeing and leading the provision of Security Architecture services to change initiatives, aligning and coordinating with wider Digital Security and architecture governance functions to advise on and deliver a comprehensive enterprise (IT) and operational technology (OT) security architecture which is necessary to build and ensure an enhanced resilience in our critical operations against known More ❯

Lead Considering making an application for this job Check all the details in this job description, and then click on Apply. Security Architect Flexible location – Glasgow, Ipswich, London, Northampton or Selby Hybrid working Permanent, full time Career level 3 Closing date: Monday 30th June 2025 Who we are We’re not just talking about making a difference, we’re … champions. We’re enabling a zero carbon, lower cost energy future for all, and working hard to decarbonise the planet for generations to come. About the role As Lead Security Architect, you’ll be instrumental in the definition, development and implementation of the enterprise security architecture strategy and technology roadmaps aligned to the strategic requirements of the business. … This role will involve overseeing and leading the provision of Security Architecture services to change initiatives, aligning and coordinating with wider Digital Security and architecture governance functions to advise on and deliver a comprehensive enterprise (IT) and operational technology (OT) security architecture which is necessary to build and ensure an enhanced resilience in our critical operations against More ❯

Our client is hiring an Engineering Manager to lead a newly formed security engineering team focused on safeguarding both traditional finance and digital asset platforms. Reporting directly to the CTO, this role is ideal for a seasoned security professional ready to define and execute a comprehensive security vision. The successful candidate will be responsible for shaping the … technical roadmap and mentoring a team of engineers who will design, build, and automate cutting-edge security controls across cloud infrastructure, application layers, and detection systems. The ideal candidate will bring over a decade of experience in security engineering, including at least three years in a leadership role within fintech, exchanges, or large-scale web environments. A strong … background in building automated security pipelines using Infrastructure as Code (IaC), along with expertise in scanning, secret detection, and exploit simulation, is essential. Proficiency in coding, coupled with a deep understanding of micro-services and distributed systems, will be key to driving innovation and resilience in the company's security posture. Responsibilities: Develop a multi-year security More ❯

live experiences, driving $3B+ in ticket sales through smarter integrations, marketing, and analytics. We’re looking for a Senior DevSecOps Engineer to own and scale their AWS infrastructure and security posture across their purchase and insights platforms. You'll step into a hands-on role and help them tackle challenges from PCI/SOC2 compliance to performance optimisation … cost-efficient migrations (including from their London DC to Frankfurt). What you'll do: Design secure, scalable AWS cloud infrastructure Terraform, CI/CD). Lead on platform security: zero trust, key management, secure SDLC. Drive observability, performance, and reliability across the stack. Champion security and compliance (PCI DSS, SOC2, ISO 27001). Support migrations, decommissioning, and … cost/performance projects. What we're looking for: 5+ years in DevOps/SRE roles with a focus on security (AWS, IAC, ECS, CI/CD, encryption). Confident working independently in a fast-paced environment. A balance of technical depth, security mindset, and people skills. Background in startups, scaleups, or agencies preferred. What's in it More ❯

live experiences, driving $3B+ in ticket sales through smarter integrations, marketing, and analytics. We're looking for a Senior DevSecOps Engineer to own and scale their AWS infrastructure and security posture across their purchase and insights platforms. You'll step into a hands-on role and help them tackle challenges from PCI/SOC2 compliance to performance optimisation … cost-efficient migrations (including from their London DC to Frankfurt). What you'll do: Design secure, scalable AWS cloud infrastructure Terraform, CI/CD). Lead on platform security: zero trust, key management, secure SDLC. Drive observability, performance, and reliability across the stack. Champion security and compliance (PCI DSS, SOC2, ISO 27001). Support migrations, decommissioning, and … cost/performance projects. What we're looking for: 5+ years in DevOps/SRE roles with a focus on security (AWS, IAC, ECS, CI/CD, encryption). Confident working independently in a fast-paced environment. A balance of technical depth, security mindset, and people skills. Background in startups, scaleups, or agencies preferred. What's in it More ❯

Are you looking for an exciting new opportunity? Join a trusted security and compliance partner offering comprehensive services including GRC consulting, CREST-accredited penetration testing, and an industry-leading vulnerability management service. As the number one Global Service Partner of Vanta, the company has a proven track record of helping hundreds of businesses from tech startups to global industry … leaders achieve their security compliance goals, including SOC 2 and ISO 27001. With a focus on delivering trust and excellence, it ensures that companies of all sizes can effectively manage their security posture and compliance needs. If you would like to learn more about this opportunity, feel free to reach out and apply today! Responsibilities: Work across … testing and red teaming Contribute to client relationships and leading high-level engagements Scoping and delivering advanced red team assessments Mentoring more junior team members Supporting innovation through offensive security research Required Skills/Qualifications: Minimum 7 years of penetration testing experience, with at least 4 years in red teaming Strong hands-on background across a range of testing More ❯

Are you passionate about technology and enjoy explaining complex solutions in a way that everybody gets excited? If so, read on! About Picus Picus Security, the leading security validation company, gives organizations a clear picture of their cyber risk based on business context. Picus transforms security practices by correlating, prioritizing, and validating exposures across siloed findings so … teams can focus on critical gaps and high-impact fixes. With Picus, security teams can quickly take action with one-click mitigations to stop more threats with less effort. The Picus Security Validation Platform easily reaches across on-prem environments, hybrid clouds and endpoints coupled with Numi AI to provide exposure validation. The pioneer of Breach and Attack … an entrepreneurial mindset, who takes the initiative and thrives in a dynamic environment, then this is a great opportunity to play a pivotal role in a fast-growing cyber security company. You will be able to have a direct impact on the future of our business by helping to influence global adoption of our award-winning Complete Security More ❯

our anti-spam platforms, documenting new attack techniques, and identifying detection gaps. You will collaborate closely with product and engineering teams to suggest and implement improvements, ensuring our email security solutions remain highly effective. Why Join Our Team? At Mimecast, you'll directly combat emerging email threats, dissecting attacker TTPs and crafting robust detection rules. This is a unique … Procedures (TTPs) related to email-delivered threats and communicate them internally or externally. Participate in cross-functional projects with Product, Engineering, and Operations teams to enhance Mimecast's overall security posture and product capabilities. What You Bring to the Team: Experience with email detection/filtering engines (Rspamd, SpamAssassin, MailScanner, or similar), including rule/signature development. Knowledge More ❯

My client within the financial services industry is looking to bring in a Third Party IT Security Manager to join the team. Responsibilities: Execute Third Party Due Diligence, risk profiling, onboarding, re-certification; Make an opinion on Third Party Security Posture; Define Remediation where applicable Support Contract Management - ensure that the security expectations included in the … contract are proportionate to the risk profiling Requirements: Previous experience in Third Party Security Management (i.e. Due Diligence, etc.) is a must Knowledge of control frameworks, e.g., ISO 27000, NIST, CIS-18, COBIT-5 Knowledge of Swift CSP framework is essential Knowledge of relevant regulations, i.e. DORA, Outsourcing, ESMA, etc. Financial services experience Logistics: 12 month contract 2 days More ❯

My client within the financial services industry is looking to bring in a Third Party IT Security Manager to join the team. Responsibilities: Execute Third Party Due Diligence, risk profiling, onboarding, re-certification; Make an opinion on Third Party Security Posture; Define Remediation where applicable Support Contract Management - ensure that the security expectations included in the … contract are proportionate to the risk profiling Requirements: Previous experience in Third Party Security Management (i.e. Due Diligence, etc.) is a must Knowledge of control frameworks, e.g., ISO 27000, NIST, CIS-18, COBIT-5 Knowledge of Swift CSP framework is essential Knowledge of relevant regulations, i.e. DORA, Outsourcing, ESMA, etc. Financial services experience Logistics: 12 month contract 2 days More ❯

Salesforce Security Engineer Salary : £85,000 Locations: Leeds, Manchester, Redhill, Tunbridge Wells, Bournemouth, or Bristol (Hybrid/Flexible) We're looking for a Salesforce Security Engineer who brings strong engineering fundamentals and hands-on experience to the intersection of Salesforce development and security engineering . You'll play a critical role in enhancing the security posture of our Salesforce platform-contributing directly to secure code practices, threat modelling, and security testing across our CI/CD pipeline. This role is ideal for someone with engineering roots who has evolved into the security space and is passionate about improving security maturity in modern DevSecOps environments. What You'll Do Lead and contribute to … the security engineering of our Salesforce platform especially in the context of APEX code , API design, and secure development lifecycle. Apply the DSOMM (DevSecOps Maturity Model) and OWASP security principles to assess and uplift Salesforce security maturity. Own and improve pipeline security including static code analysis (SAST), dynamic application security testing (DAST), dependency checks, and More ❯

I am hiring a Security Engineering Manager to build and lead a small, elite team protecting next-generation trading and crypto custody infrastructure. Reporting directly to the CTO, this is not a purely strategic or oversight role. You’ll be owning the security vision, building the roadmap, writing code, reviewing architecture, threat modelling, and automating at scale, while … building a high-performance team around you. This is what you will own: Security Engineering Strategy Define and execute the security vision across cloud infrastructure, applications, and detection systems, aligned to real-world risks, not checkbox compliance. Team Leadership Hire, mentor, and retain top-tier security engineers. Build a culture of technical excellence and trust. Technical Execution … technical reviews of high-value trading and custody systems. Translate threat intel into proactive engineering solutions. Cross-Functional Collaboration Work closely with Engineering, DevOps, and Product teams to embed security from day one, not as a blocker, but as an enabler. Please apply if you have done the following: You’ve led security engineering teams but still write More ❯

I am hiring a Security Engineering Manager to build and lead a small, elite team protecting next-generation trading and crypto custody infrastructure. Reporting directly to the CTO, this is not a purely strategic or oversight role. You’ll be owning the security vision, building the roadmap, writing code, reviewing architecture, threat modelling, and automating at scale, while … building a high-performance team around you. This is what you will own: Security Engineering Strategy Define and execute the security vision across cloud infrastructure, applications, and detection systems, aligned to real-world risks, not checkbox compliance. Team Leadership Hire, mentor, and retain top-tier security engineers. Build a culture of technical excellence and trust. Technical Execution … technical reviews of high-value trading and custody systems. Translate threat intel into proactive engineering solutions. Cross-Functional Collaboration Work closely with Engineering, DevOps, and Product teams to embed security from day one, not as a blocker, but as an enabler. Please apply if you have done the following: You’ve led security engineering teams but still write More ❯

Protecting businesses. Empowering people. Making cyber security achievable. Cyber security shouldn't be complicated. You'll help make it clear - and achievable - for businesses that need it most. That's what you'll do here as a Cyber Essentials Assessor. You'll be the person clients rely on to guide them through Cyber Essentials and Cyber Essentials Plus … evidence, advising on remediation, carrying out technical evaluations (remote and on-site), and staying on top of emerging cyber risks. If you're passionate about helping SMEs improve their security posture - and want a role where your knowledge makes a real difference - we'd love to hear from you. About us We believe cyber security shouldn't … be something businesses fear - it should be something that empowers them. We're a UK-based cyber security company helping organisations build resilience and stay secure in a fast-changing world. We work with clients across a wide range of industries, delivering practical, effective security solutions they can trust. A big part of what we do is helping More ❯

Role Overview We are looking for an experienced OT Cyber Security Specialist to help strengthen cyber resilience across operational technology environments. You will play a key role in identifying and managing cyber risks in OT systems while working closely with internal teams and external partners to improve overall security posture. This role is ideal for someone who understands … the intersection of engineering, operations, and cybersecurity and wants to make a meaningful impact in complex, real-world environments. Key Responsibilities Support the development and implementation of OT cyber security practices Contribute to the identification and remediation of vulnerabilities in OT systems Work with engineering, operations, and IT teams to embed cyber resilience across environments Help monitor and improve … security controls, networks, and access policies Assist in the response to cyber incidents affecting operational systems Maintain documentation and contribute to policy, governance, and awareness efforts Engage with third parties, suppliers, or clients as needed to ensure security alignment Stay informed on emerging threats, technologies, and best practices in the OT space What We're Looking For Experience More ❯

A large global organisation are looking for a Senior Network Engineer to support and assist with design, architecture, implementation, security and support of a multi-site network communication environment. This will be a full time, permanent position. The position will be worked on a Hybrid basis, 3 days on site in Central London. Key Skills/Responsibilities: Three to … five years of experience in the following areas: -Networking, including LAN/WAN -Firewalls (Cisco) -Security and encryption technologies -Load Balancing Manage and implement a range of network projects. Develop detailed requirements for upgrading existing production, corporate and non-production network devices. Participates in the planning and implementing upgrading existing production and corporate and non-production network devices. Complete … activities that would optimize the network's performance, efficiency, and capacity. Perform baseline checks on new hardware to ensure it complies with company standards and aligns with the current security posture. Holds a current CCNP certification or equivalent experience. More ❯

ready to be part of something extraordinary, we want to hear from you! We're offering a fantastic opportunity for a motivated individual to join us as a Cyber Security Apprentice. This Level 4 Cyber Security Technologist (Risk Analyst) Apprenticeship starts in September 2025. In this role, you'll support the IT team in strengthening our security practices and minimising risk. You'll play an active part in reviewing and analysing security event data, helping to boost our ability to detect and investigate potential threats. Candidates will need to be available to attend an onsite Assessment Centre on Thursday 24th July 2025. Day-to-Day you will: Identify and remediate potential incidents, escalating when necessary. … Conduct cybersecurity risk assessments and provide recommendations to reduce risk and improve security posture. Assist in developing and enforcing information security policies, processes, and controls, following industry best practices. Collaborate with external parties to identify risks and vulnerabilities, while working with experts to ensure security infrastructure changes follow standard procedures and change control policies. Assist in running More ❯

Cyber Security Apprentice page is loaded Cyber Security Apprentice Apply locations Milton Keynes time type Full time posted on Posted 3 Days Ago time left to apply End Date: July 3, 2025 (9 days left to apply) job requisition id R Behind every race-winning team is a world-class support network. Our business functions drive efficiency, innovation … ready to be part of something extraordinary, we want to hear from you! We're offering a fantastic opportunity for a motivated individual to join us as a Cyber Security Apprentice. This Level 4 Cyber Security Technologist (Risk Analyst) Apprenticeship starts in September 2025. In this role, you'll support the IT team in strengthening our security practices and minimising risk. You'll play an active part in reviewing and analysing security event data, helping to boost our ability to detect and investigate potential threats. Candidates will need to be available to attend an onsite Assessment Centre on Thursday 24th July 2025. Day-to-Day you will: Identify and remediate potential incidents, escalating when necessary. More ❯

A large global organisation are looking for a Senior Network Engineer to support and assist with design, architecture, implementation, security and support of a multi-site network communication environment. This will be a full time, permanent position. The position will be worked on a Hybrid basis, 3 days on site in Central London. Key Skills/Responsibilities: Three to … five years of experience in the following areas: -Networking, including LAN/WAN -Firewalls (Cisco) -Security and encryption technologies -Load Balancing Manage and implement a range of network projects. Develop detailed requirements for upgrading existing production, corporate and non-production network devices. Participates in the planning and implementing upgrading existing production and corporate and non-production network devices. Complete … activities that would optimize the network's performance, efficiency, and capacity. Perform baseline checks on new hardware to ensure it complies with company standards and aligns with the current security posture. Holds a current CCNP certification or equivalent experience. More ❯

ready to be part of something extraordinary, we want to hear from you! We're offering a fantastic opportunity for a motivated individual to join us as a Cyber Security Apprentice. This Level 4 Cyber Security Technologist (Risk Analyst) Apprenticeship starts in September 2025. In this role, you'll support the IT team in strengthening our security practices and minimising risk. You'll play an active part in reviewing and analysing security event data, helping to boost our ability to detect and investigate potential threats. Candidates will need to be available to attend an onsite Assessment Centre on Thursday 24th July 2025. Day-to-Day you will: Identify and remediate potential incidents, escalating when necessary. … Conduct cybersecurity risk assessments and provide recommendations to reduce risk and improve security posture. Assist in developing and enforcing information security policies, processes, and controls, following industry best practices. Collaborate with external parties to identify risks and vulnerabilities, while working with experts to ensure security infrastructure changes follow standard procedures and change control policies. Assist in running More ❯

vulnerabilities and providing detailed reports with recommendations for remediation ️ Conducting vulnerability assessments and risk analyses to identify areas of concern ️ Collaborating with development and IT teams to improve overall security posture ️ Keeping up to date with the latest security threats, techniques, and tools to ensure effective testing What We're Looking For: ️ Proven experience as a Penetration More ❯